d2833e907d010a96374799501830246f1a6bc7ae7c499fdb552d6e824906a8d3 | Triage

Sharing

General

Target

2024-08-11_47e21ff48ec8d568dc299406d0e48026_poet-rat_snatch
Size

5.8MB
Sample

240811-y9cfpa1bmg
MD5

47e21ff48ec8d568dc299406d0e48026
SHA1

418a4a563ebaa5fbfb065b0a90a8de652aabc473
SHA256

d2833e907d010a96374799501830246f1a6bc7ae7c499fdb552d6e824906a8d3
SHA512

2531407e6980af374f98b15a6cabc68667ee72434c328337433c38a0be587ab27a76e7c3f77b344a2062ec825000a54e6dd8f088d33978640207da1d1c2266ca
SSDEEP

49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfI:63CE/Xx4LKhdkFESp

Score

7^/10

Malware Config

Targets

- Target
  
  2024-08-11_47e21ff48ec8d568dc299406d0e48026_poet-rat_snatch
- Size
  
  5.8MB
- MD5
  
  47e21ff48ec8d568dc299406d0e48026
- SHA1
  
  418a4a563ebaa5fbfb065b0a90a8de652aabc473
- SHA256
  
  d2833e907d010a96374799501830246f1a6bc7ae7c499fdb552d6e824906a8d3
- SHA512
  
  2531407e6980af374f98b15a6cabc68667ee72434c328337433c38a0be587ab27a76e7c3f77b344a2062ec825000a54e6dd8f088d33978640207da1d1c2266ca
- SSDEEP
  
  49152:vzlnEcO3Cgrb/TbvO90d7HjmAFd4A64nsfJa/pJMBMvDF/4q4auspdkgKKhdvZfI:63CE/Xx4LKhdkFESp
Score

7^/10
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2